SOC Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

Expression · 12 hours ago

SOC Analyst

positionWashington, DC
timeFull-time
remoteOnsite
seniorityMid Level
money$100K/yr - $120K/yr
date4+ years exp

Expression is seeking a SOC Analyst to join our team in support of the National Telecommunications and Information Administration (NTIA) ISCOM Division. In this role, you will provide cyber threat monitoring, analysis, and incident response support that strengthens program situational awareness and ensures resilience of critical federal networks.

Software
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Monitor, detect, and analyze security threats, risks, and alerts using SOC tools, and initiate escalation as required
Conduct cyber threat analysis and contribute to reports for program situational awareness
Provide Tier 1 response to security incidents and support escalation to Tier 2 during high-volume or critical events
Conduct functional incident response teams during shifts, ensuring accountability and effective resolution
Conduct malware analysis (static and dynamic) and assess Indicators of Compromise (IOCs)
Perform network forensics and deep packet inspection to investigate intrusions
Implement remediation strategies and support recovery activities after incidents
Recommend process improvements and create new detection content to strengthen SOC operations
Conduct proactive monthly threat hunts and provide reports to stakeholders
Collaborate with cyber teams for incident escalation, coordinated responses, and SOC policy/procedure development

Qualification

CybersecurityIncident ResponseSOC OperationsMalware AnalysisNetwork ForensicsSIEM PlatformsNIST Cybersecurity FrameworkAnalytical SkillsProblem-Solving SkillsCommunication SkillsTeam Collaboration

Required

Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or related field; OR equivalent certifications (CompTIA Security+, CISSP, GCIH, GCIA)
Minimum of 4 years of experience in security operations, incident response, or cyber threat analysis
Strong knowledge of SOC operations, incident detection, and response workflows
Familiarity with malware analysis, network forensics, and packet-level inspection
Excellent analytical, problem-solving, and communication skills
Active Secret or Top Secret clearance required (U.S. Citizenship required)

Preferred

Advanced certifications such as CISSP, GCFA, GCIH, GCIA, or equivalent
Prior experience supporting NTIA, Department of Commerce, or other federal civilian agencies
Hands-on experience with SIEM platforms, IDS/IPS, and endpoint monitoring tools
Familiarity with the NIST Cybersecurity Framework and Risk Management Framework (RMF)
Experience developing and maturing SOC playbooks, processes, and detection capabilities

Benefits

401k matching
PPO and HDHP medical/dental/vision insurance
Education reimbursement up to $10,000/yr
Complimentary life insurance
Generous rollover PTO and 11 days of holiday leave
Onsite gym facility at our HQ office in Washington DC
Commuter Benefits Plan
In-office Cold Brew Coffee

Company

Expression

twittertwittertwitter
company-logo
Expression is a leading provider of tailored and integrated information technology, software engineering, data analytics, and electromagnetic spectrum management solutions for federal and commercial clients.
dateFounded in 1997
location
Washington, District of Columbia, USA
people-size51-200 employees
web-link
https://corp.expr.net/

Funding

Current Stage
Growth Stage
Total Funding
unknown
Key Investors
Enlightenment Capital
2019-09-17Private Equity

Leadership Team

leader-logo
Abir Ray
CEO/CTO
linkedin
Company data provided by crunchbase